package com.koo.modules.sys.service.impl;

import com.baomidou.mybatisplus.core.conditions.query.LambdaQueryWrapper;
import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.baomidou.mybatisplus.core.metadata.IPage;
import com.baomidou.mybatisplus.extension.service.impl.ServiceImpl;
import com.koo.common.vo.UserVo;
import com.koo.common.exception.RRException;
import com.koo.common.utils.Constant;
import com.koo.common.utils.PageUtils;
import com.koo.common.utils.Query;
import com.koo.modules.sys.dao.SysRoleDao;
import com.koo.modules.sys.dao.SysUserDao;
import com.koo.modules.sys.dao.SysUserTokenDao;
import com.koo.modules.sys.entity.SysRoleEntity;
import com.koo.modules.sys.entity.SysUserEntity;
import com.koo.modules.sys.entity.SysUserTokenEntity;
import com.koo.modules.sys.service.SysRoleService;
import com.koo.modules.sys.service.SysUserRoleService;
import com.koo.modules.sys.service.SysUserService;
import org.apache.commons.lang.RandomStringUtils;
import org.apache.commons.lang.StringUtils;
import org.apache.shiro.crypto.hash.Sha256Hash;
import org.springframework.beans.BeanUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;

import javax.annotation.Resource;
import java.util.Arrays;
import java.util.Date;
import java.util.List;
import java.util.Map;
import java.util.stream.Collectors;


/**
 * 系统用户
 *
 * @author charlin
 */
@Service
public class SysUserServiceImpl extends ServiceImpl<SysUserDao, SysUserEntity> implements SysUserService {
    @Autowired
    private SysUserRoleService sysUserRoleService;
    @Autowired
    private SysRoleService sysRoleService;
    @Resource
    private SysRoleDao sysRoleDao;
    @Resource
    private SysUserTokenDao userTokenDao;

    @Override
    public PageUtils queryPage(Map<String, Object> params) {
        String username = (String) params.get("username");
        Long createUserId = (Long) params.get("createUserId");

        IPage<SysUserEntity> page = this.page(
                new Query<SysUserEntity>().getPage(params),
                new LambdaQueryWrapper<SysUserEntity>()
                        .eq(createUserId != null, SysUserEntity::getCreateUserId, createUserId)
                        .and(StringUtils.isNotBlank(username), q -> q.like(SysUserEntity::getUsername, username)
                                .or().like(SysUserEntity::getMobile, username)
                                .or().like(SysUserEntity::getEmail, username)
                        )

        );
        //查询角色信息
        List<SysUserEntity> collect = page.getRecords().stream().map(u -> {
            List<SysRoleEntity> roleList = sysRoleDao.listByUserId(u.getUserId());
            u.setRoleList(roleList);
            return u;
        }).collect(Collectors.toList());
        page.setRecords(collect);
        return new PageUtils(page);
    }

    @Override
    public List<String> queryAllPerms(Long userId) {
        return baseMapper.queryAllPerms(userId);
    }

    @Override
    public List<Long> queryAllMenuId(Long userId) {
        return baseMapper.queryAllMenuId(userId);
    }

    @Override
    public SysUserEntity queryByUserName(String username) {
        return baseMapper.queryByUserName(username);
    }

    @Override
    @Transactional
    public void saveUser(SysUserEntity user) {
        user.setCreateTime(new Date());
        //sha256加密
        String salt = RandomStringUtils.randomAlphanumeric(20);
        user.setPassword(new Sha256Hash(user.getPassword(), salt).toHex());
        user.setSalt(salt);
        this.save(user);

        //检查角色是否越权
        checkRole(user);

        //保存用户与角色关系
        sysUserRoleService.saveOrUpdate(user.getUserId(), user.getRoleIdList());
    }

    @Override
    @Transactional
    public void update(SysUserEntity user) {
        if (StringUtils.isBlank(user.getPassword())) {
            user.setPassword(null);
        } else {
            user.setPassword(new Sha256Hash(user.getPassword(), user.getSalt()).toHex());
        }
        this.updateById(user);

        //检查角色是否越权
        checkRole(user);

        //保存用户与角色关系
        sysUserRoleService.saveOrUpdate(user.getUserId(), user.getRoleIdList());
    }

    @Override
    public void deleteBatch(Long[] userId) {
        this.removeByIds(Arrays.asList(userId));
    }

    @Override
    public boolean updatePassword(Long userId, String password, String newPassword) {
        SysUserEntity userEntity = new SysUserEntity();
        userEntity.setPassword(newPassword);
        return this.update(userEntity,
                new QueryWrapper<SysUserEntity>().eq("id", userId).eq("password", password));
    }

    @Override
    public UserVo getUserBytoken(String token) {
        LambdaQueryWrapper<SysUserTokenEntity> qw = new LambdaQueryWrapper();
        qw.eq(StringUtils.isNotEmpty(token), SysUserTokenEntity::getToken, token);
        SysUserTokenEntity tokenEntity = userTokenDao.selectOne(qw);
        if(tokenEntity != null){
            SysUserEntity sysUserEntity = this.baseMapper.selectById(tokenEntity.getUserId());
            if(sysUserEntity != null){
                UserVo user = new UserVo();
                BeanUtils.copyProperties(sysUserEntity, user);
                return user;
            }
        }
        return null;
    }

    @Override
    public List<SysUserEntity> listUsers(Long storeId) {
        LambdaQueryWrapper<SysUserEntity> qw = new LambdaQueryWrapper();
        qw.eq(storeId != null, SysUserEntity::getStoreId,storeId);
        return this.baseMapper.selectList(qw);
    }

    /**
     * 检查角色是否越权
     */
    private void checkRole(SysUserEntity user) {
        if (user.getRoleIdList() == null || user.getRoleIdList().size() == 0) {
            return;
        }
        //如果不是超级管理员，则需要判断用户的角色是否自己创建
        if (user.getCreateUserId() == Constant.SUPER_ADMIN) {
            return;
        }

        //查询用户创建的角色列表
        List<Long> roleIdList = sysRoleService.queryRoleIdList(user.getCreateUserId());

        //判断是否越权
        if (!roleIdList.containsAll(user.getRoleIdList())) {
            throw new RRException("新增用户所选角色，不是本人创建");
        }
    }
}